Description
A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerability in the remote message decompression process. By sending a specially crafted compressed remote message before authentication, an attacker can cause memory corruption, leading to a denial of service (DoS) in the CIB remote listener. This can result in the affected service crashing.
Published: 2026-06-16
Score: 8.6 High
EPSS: < 1% Very Low
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

A flaw in Pacemaker allows an unauthenticated remote attacker to send a specially crafted compressed message that, before authentication, triggers an integer overflow during message decompression. This overflow corrupts memory and can bring the CIB remote listener process to a halt, resulting in a denial of service. The vulnerability is a classic integer overflow (CWE‑190).

Affected Systems

Vulnerable platforms include Red Hat Enterprise Linux 6, 7, 8, 9, and 10, as well as Red Hat OpenShift Container Platform 4. The affected component is the Pacemaker CIB remote listener that listens on configured remote ports.

Risk and Exploitability

The CVSS score of 8.6 classifies this flaw as a high‑severity vulnerability. The EPSS score of less than 1 % indicates that exploitation is currently unlikely, and the flaw is not listed in the CISA KEV catalog. However, because the attack vector is remote and unauthenticated, an attacker only needs network reach to the listener’s port to exploit it, making it potentially hard to detect without monitoring for process crashes. The primary risk is service disruption rather than data compromise.

Generated by OpenCVE AI on June 17, 2026 at 19:24 UTC.

Remediation

Vendor Workaround

Disable the Pacemaker CIB remote listener if it is not actively used. If the listener is required, restrict network access to trusted hosts by configuring firewall rules to limit inbound connections to the `remote-port` or `remote-tls-port`. These actions reduce the attack surface by limiting unauthenticated network exposure to the vulnerable component. A restart of the Pacemaker service may be necessary for these changes to be fully applied.


OpenCVE Recommended Actions

  • Disable the Pacemaker CIB remote listener if it is not actively used.
  • If the listener is required, restrict network access to trusted hosts by configuring firewall rules to limit inbound connections to the remote-port or remote-tls-port.
  • Restart the Pacemaker service to ensure changes take effect.

Generated by OpenCVE AI on June 17, 2026 at 19:24 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Fri, 26 Jun 2026 10:45:00 +0000

Type Values Removed Values Added
First Time appeared Clusterlabs
Clusterlabs pacemaker
Redhat openshift Container Platform
Vendors & Products Clusterlabs
Clusterlabs pacemaker
Redhat openshift Container Platform

Thu, 18 Jun 2026 04:45:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Wed, 17 Jun 2026 05:15:00 +0000

Type Values Removed Values Added
References
Metrics threat_severity

None

threat_severity

Important


Tue, 16 Jun 2026 19:30:00 +0000

Type Values Removed Values Added
References

Tue, 16 Jun 2026 16:45:00 +0000

Type Values Removed Values Added
Description A flaw was found in Pacemaker. An unauthenticated remote attacker can exploit an integer overflow vulnerability in the remote message decompression process. By sending a specially crafted compressed remote message before authentication, an attacker can cause memory corruption, leading to a denial of service (DoS) in the CIB remote listener. This can result in the affected service crashing.
Title Pacemaker: pacemaker: denial of service via integer overflow in remote message decompression
First Time appeared Redhat
Redhat enterprise Linux
Redhat openshift
Weaknesses CWE-190
CPEs cpe:/a:redhat:openshift:4
cpe:/o:redhat:enterprise_linux:10
cpe:/o:redhat:enterprise_linux:6
cpe:/o:redhat:enterprise_linux:7
cpe:/o:redhat:enterprise_linux:8
cpe:/o:redhat:enterprise_linux:9
Vendors & Products Redhat
Redhat enterprise Linux
Redhat openshift
References
Metrics cvssV3_1

{'score': 8.6, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H'}


Subscriptions

Clusterlabs Pacemaker
Redhat Enterprise Linux Openshift Openshift Container Platform
cve-icon MITRE

Status: PUBLISHED

Assigner: redhat

Published:

Updated: 2026-06-30T12:06:56.354Z

Reserved: 2026-06-02T15:15:07.547Z

Link: CVE-2026-10649

cve-icon Vulnrichment

Updated: 2026-06-16T17:42:34.626Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2026-06-16T17:16:30.773

Modified: 2026-06-16T19:16:30.490

Link: CVE-2026-10649

cve-icon Redhat

Severity : Important

Publid Date: 2026-06-16T00:00:00Z

Links: CVE-2026-10649 - Bugzilla

cve-icon OpenCVE Enrichment

Updated: 2026-06-26T09:45:11Z

Weaknesses
  • CWE-190

    Integer Overflow or Wraparound